Introduce log.file config option to log to file

bukka · bukka · commit 40c498a58d87 · 2026-01-10T15:46:43.000+01:00
diff --git a/src/lib/SoftHSM.cpp b/src/lib/SoftHSM.cpp
@@ -574,6 +574,12 @@ CK_RV SoftHSM::C_Initialize(CK_VOID_PTR pInitArgs)
 		return CKR_GENERAL_ERROR;
 	}
 
+	// Configure log file (empty string = use syslog)
+	if (!setLogFile(Configuration::i()->getString("log.file", "")))
+	{
+		WARNING_MSG("Could not open log file, using syslog");
+	}
+
 	// Configure object store storage backend used by all tokens.
 	if (!ObjectStoreToken::selectBackend(Configuration::i()->getString("objectstore.backend", DEFAULT_OBJECTSTORE_BACKEND)))
 	{
@@ -637,6 +643,9 @@ CK_RV SoftHSM::C_Finalize(CK_VOID_PTR pReserved)
 	CryptoFactory::reset();
 	SecureMemoryRegistry::reset();
 
+	// Close log file if open
+	closeLogFile();
+
 	isInitialised = false;
 
 	supportedMechanisms.clear();
diff --git a/src/lib/common/Configuration.cpp b/src/lib/common/Configuration.cpp
@@ -48,6 +48,7 @@ const struct config Configuration::valid_config[] = {
 	{ "objectstore.backend",	CONFIG_TYPE_STRING },
 	{ "objectstore.umask",		CONFIG_TYPE_INT_OCTAL },
 	{ "log.level",			CONFIG_TYPE_STRING },
+	{ "log.file",			CONFIG_TYPE_STRING },
 	{ "slots.removable",		CONFIG_TYPE_BOOL },
 	{ "slots.mechanisms",		CONFIG_TYPE_STRING },
 	{ "library.reset_on_fork",	CONFIG_TYPE_BOOL },
diff --git a/src/lib/common/log.cpp b/src/lib/common/log.cpp
@@ -29,7 +29,7 @@
 
  Implements logging functions. This file is based on the concepts from
  SoftHSM v1 but extends the logging functions with support for a variable
- argument list as defined in stdarg (3).
+ argument list as defined in stdarg (3) and logging to file.
  *****************************************************************************/
 
 #include "config.h"
@@ -38,9 +38,13 @@
 #include <stdio.h>
 #include <sstream>
 #include <vector>
+#include <time.h>
 #include "log.h"
+#include "MutexFactory.h"
 
 int softLogLevel = LOG_DEBUG;
+static FILE* logFile = nullptr;
+static Mutex* logMutex = nullptr;
 
 bool setLogLevel(const std::string &loglevel)
 {
@@ -69,6 +73,93 @@ bool setLogLevel(const std::string &loglevel)
 	return true;
 }
 
+bool setLogFile(const std::string &logFilePath)
+{
+	// Quick return without creating mutex for default configuration
+	if (logFilePath.empty() && logFile == nullptr)
+	{
+		return true;
+	}
+
+	if (logMutex == nullptr)
+	{
+		logMutex = MutexFactory::i()->getMutex();
+	}
+
+	MutexLocker lock(logMutex);
+
+	if (logFile != nullptr)
+	{
+		fclose(logFile);
+		logFile = nullptr;
+	}
+
+	if (logFilePath.empty())
+	{
+		return true;
+	}
+
+	logFile = fopen(logFilePath.c_str(), "a");
+	if (logFile == nullptr)
+	{
+		syslog(LOG_ERR, "Failed to open log file: %s, using syslog only", logFilePath.c_str());
+		return false;
+	}
+
+	return true;
+}
+
+void closeLogFile()
+{
+	if (logMutex != nullptr)
+	{
+		MutexLocker lock(logMutex);
+
+		if (logFile != nullptr)
+		{
+			fclose(logFile);
+			logFile = nullptr;
+		}
+	}
+
+	if (logMutex != nullptr)
+	{
+		MutexFactory::i()->recycleMutex(logMutex);
+		logMutex = nullptr;
+	}
+}
+
+static const char* getLevelString(int loglevel)
+{
+	switch(loglevel)
+	{
+		case LOG_ERR: return "ERROR";
+		case LOG_WARNING: return "WARNING";
+		case LOG_INFO: return "INFO";
+		case LOG_DEBUG: return "DEBUG";
+		default: return "UNKNOWN";
+	}
+}
+
+static void writeLogToFile(const int loglevel, const char* prependText, const char* msgText)
+{
+	MutexLocker lock(logMutex);
+
+	time_t now = time(nullptr);
+	struct tm timeinfo;
+	char timeStr[64];
+
+#ifdef _WIN32
+	localtime_s(&timeinfo, &now);
+#else
+	localtime_r(&now, &timeinfo);
+#endif
+	strftime(timeStr, sizeof(timeStr), "%Y-%m-%d %H:%M:%S", &timeinfo);
+
+	fprintf(logFile, "%s %s: %s%s\n", timeStr, getLevelString(loglevel), prependText, msgText);
+	fflush(logFile);
+}
+
 void softHSMLog(const int loglevel, const char* functionName, const char* fileName, const int lineNo, const char* format, ...)
 {
 	if (loglevel > softLogLevel) return;
@@ -98,12 +189,22 @@ void softHSMLog(const int loglevel, const char* functionName, const char* fileNa
 	vsnprintf(&logMessage[0], 4096, format, args);
 	va_end(args);
 
-	// And log it
-	syslog(loglevel, "%s%s", prepend.str().c_str(), &logMessage[0]);
+	const char* msgText = &logMessage[0];
+	std::string prependStr = prepend.str();
+	const char* prependText = prependStr.c_str();
+
+	// Log to file if configured, otherwise use syslog
+	if (logFile != nullptr)
+	{
+		writeLogToFile(loglevel, prependText, msgText);
+	}
+	else
+	{
+		syslog(loglevel, "%s%s", prependText, msgText);
+	}
 
 #ifdef DEBUG_LOG_STDERR
-	fprintf(stderr, "%s%s\n", prepend.str().c_str(), &logMessage[0]);
+	fprintf(stderr, "%s%s\n", prependText, msgText);
 	fflush(stderr);
-#endif // DEBUG_LOG_STDERR
+#endif
 }
-
diff --git a/src/lib/common/log.h b/src/lib/common/log.h
@@ -79,6 +79,8 @@
 
 /* Function definitions */
 bool setLogLevel(const std::string &loglevel);
+bool setLogFile(const std::string &logFilePath);
+void closeLogFile();
 void softHSMLog(const int loglevel, const char* functionName, const char* fileName, const int lineNo, const char* format, ...);
 
 #endif /* !_SOFTHSM_V2_LOG_H */
